Leave cleanly without guessing where secrets live.
Disconnecting ReviewRouter has two parts: revoke the GitHub App and clean up assets that belong to the customer repository, such as workflow files and Actions secrets.
GitHub owns App uninstallation.
Use this path for local beta until the dashboard exposes a direct GitHub uninstall link for each installation.
GitHub -> Settings -> Applications -> Installed GitHub Apps -> ReviewRouter -> Configure -> UninstallUninstall the GitHub App
This stops future ReviewRouter App access to selected repositories. Existing workflow files and GitHub Actions secrets are not automatically deleted by GitHub App uninstall.
Remove or update workflow files
Delete `.github/workflows/reviewrouter.yml` through a normal pull request, or leave it disabled until the team decides whether to reconnect.
Rotate or delete provider secrets
Repository and organization Actions secrets live in GitHub, not in ReviewRouter SaaS. Remove them in GitHub if the reviewer should no longer use them.
Request workspace metadata deletion
For trusted beta, request deletion through quantjumppro@gmail.com. Production should replace this with an owner self-service deletion flow and a published retention window.
Remove repo-scoped provider secrets
gh secret delete CODEX_AUTH_JSON --repo owner/repo
gh secret delete CLAUDE_CODE_OAUTH_TOKEN --repo owner/repo
gh secret delete OPENAI_API_KEY --repo owner/repo
gh secret delete OPENROUTER_API_KEY --repo owner/repo
# optional, only if it was intentionally stored
gh secret delete CODEX_CONFIG_TOML --repo owner/repoRemove org selected-repo secrets carefully
gh secret delete CODEX_AUTH_JSON --org acme --app actions
gh secret delete CLAUDE_CODE_OAUTH_TOKEN --org acme --app actions
gh secret delete OPENAI_API_KEY --org acme --app actions
gh secret delete OPENROUTER_API_KEY --org acme --app actions
# verify selected repositories before deleting shared org secrets